Techrights logo

IRC: #techbytes @ FreeNode: January 12th, 2014-January 18th, 2014

Join us now at the IRC channel.

schestowitz>> 1. Whether it'll be possible to make space for the Gallery2 DB (aboutJan 12 02:03
schestowitz>> 3 GB, more than what's currently available), which contains a lot ofJan 12 02:03
schestowitz>> screenshots DistroWatch links to:Jan 12 02:03
schestowitz>>Jan 12 02:03
schestowitz>> 10323768 6967364 2834308 72% /varJan 12 02:03
schestowitz>Jan 12 02:03
schestowitz> Actually, I just extended /var by a gig the other day because I noticed it wasJan 12 02:03
schestowitz> around 95%. The machine currently has 31G of disk space unallocated:Jan 12 02:03
schestowitz>Jan 12 02:03
schestowitz> [root@techrights httpd]# /sbin/vgdisplayJan 12 02:03
schestowitz> --- Volume group ---Jan 12 02:03
schestowitz> VG Name               sysvgJan 12 02:03
schestowitz> System IDJan 12 02:03
schestowitz> Format                lvm2Jan 12 02:03
schestowitz> Metadata Areas        1Jan 12 02:03
schestowitz> Metadata Sequence No  7Jan 12 02:03
schestowitz> VG Access             read/writeJan 12 02:03
schestowitz> VG Status             resizableJan 12 02:03
schestowitz> MAX LV                0Jan 12 02:04
schestowitz> Cur LV                3Jan 12 02:04
schestowitz> Open LV               3Jan 12 02:04
schestowitz> Max PV                0Jan 12 02:04
schestowitz> Cur PV                1Jan 12 02:04
schestowitz> Act PV                1Jan 12 02:04
schestowitz> VG Size               72.09 GiBJan 12 02:04
schestowitz> PE Size               32.00 MiBJan 12 02:04
schestowitz> Total PE              2307Jan 12 02:04
schestowitz> Alloc PE / Size       1308 / 40.88 GiBJan 12 02:04
schestowitz> Free  PE / Size       999 / 31.22 GiBJan 12 02:04
schestowitz> VG UUID               JV3z2S-SFrK-7c9a-dr4o-nN6B-BJlj-cjZ3ZOJan 12 02:04
schestowitz>Jan 12 02:04
schestowitz> We can create a new lv for some of this stuff or we can just extend /var. IJan 12 02:04
schestowitz> think at this point it would probably be a good idea to break /var/lib/mysqlJan 12 02:04
schestowitz> into its own filesystem.Jan 12 02:04
schestowitzI am not sure what command would safely extend /var (or move mysql data into a separate new partition without breaking things). I can't import the Gallery2 database right now. :-)Jan 12 02:04
schestowitzI need to at least have a prototype ready in the coming weeks (out-of-date databases in place for testing purposes); when I divert DNS over to copilotco nameservers I'll do a Drupal upgrade (Susan still uses Drupal 6.x), try to restore functionality (many modules will cease to work and may need replacing).Jan 12 02:04
schestowitzI just want to ensure the Drupal side doesn't go horribly broken; the gallery2 side, with a 3.5 GB database, is not actively extended, so it's not of immediate concern.Jan 12 02:04
schestowitzThe value of Tux Machines is its regularly-visiting community; if the site is broken for a while, then this community will go to the competition (Lxer, Linux.com, Linux Today) and may never bother coming back (same problem Google has had).Jan 12 02:04
schestowitzSince we took over Tux Machines we grew its hits count every month, staying at around 100,000 hits per day, so I hope we can keep up the growth and become the leading Linux news syndicator. :-) Half a decade ago the site had over 300,000 hits per day.Jan 12 02:04
schestowitzhttps://en.wikipedia.org/wiki/National_Westminster_BankJan 12 02:14
TechBytesBoten.wikipedia.org | National Westminster Bank - Wikipedia, the free encyclopedia  [ http://ur1.ca/ge5u5 ]Jan 12 02:15
schestowitz"The bank's expansion strategy hit trouble with the stock market crash of 1987 and involvement in the financial scandal surrounding the collapse of Blue Arrow. The Department of Trade and Industry report on the affair was critical of the bank's management and resulted in the resignation of several members of the board, including then chairman Lord Boardman.[13] Later, the bank would divest its overseas subsidiaries. The North AmericanJan 12 02:15
schestowitzoperations were sold to Fleet Bank and Hong Kong Bank of Canada. Thereafter the bank concentrated on its core domestic business as the restyled NatWest Group, reflecting its modern positioning as a portfolio of businesses.[14] In 1993, the NatWest Tower was devastated by a Provisional IRA bomb and the bank vacated the building, subsequently selling it.[15] Then, in 1997, NatWest Markets, the corporate and investment banking arm formedJan 12 02:15
schestowitzin 1992, revealed a £50m loss had been discovered, escalating to £90.5m after further investigations. Investor and shareholder confidence was so badly shaken that the Bank of England had to instruct the board of directors to resist calls for the resignation of its most senior executives in an effort to draw a line under the affair.[16] The bank's internal controls and risk management were severely criticised in 2000 and its aggressiveJan 12 02:15
schestowitzpush into investment banking questioned, after a lengthy investigation by the Securities and Futures Authority.[17] The bank's move into complicated derivative products that it did not fully understand seemed to indicate poor management. By the end of 1997 parts of NatWest Markets had been sold, others becoming Greenwich NatWest in 1998.[18]"Jan 12 02:15
*pidgin_log has quit (Quit: Leaving.)Jan 12 05:32
*pidgin_log (~roy@host86-151-170-36.range86-151.btcentralplus.com) has joined #techbytesJan 12 05:33
*libertybox_ has quit (*.net *.split)Jan 12 11:08
*XFaCE has quit (*.net *.split)Jan 12 11:08
*XFaCE (XFaCE@unaffiliated/xface) has joined #techbytesJan 12 11:47
*libertybox_ (~liberty@host86-151-170-36.range86-151.btcentralplus.com) has joined #techbytesJan 12 11:51
*pidgin_log has quit (Quit: Leaving.)Jan 12 12:25
*schestowitz has quit (Quit: Konversation term)Jan 12 14:08
Tcl interface unloadedJan 12 14:12
Python interface unloadedJan 12 14:12
Messaging Indicator 0.3.11 plugin unloaded.Jan 12 14:12
**** ENDING LOGGING AT Sun Jan 12 14:12:19 2014
**** BEGIN LOGGING AT Sun Jan 12 14:13:11 2014
*Now talking on #techbytesJan 12 14:13
*Topic for #techbytes is: Welcome to the official channel of the TechBytes AudiocastJan 12 14:13
*Topic for #techbytes set by ThistleWeb!~gordon@unaffiliated/thistleweb at Wed Jan 5 20:55:35 2011Jan 12 14:13
schestowitzhttps://joindiaspora.com/posts/3510523Jan 12 17:46
TechBytesBot@schestowitz@joindiaspora.com: 2013: British police are third highest users of #Facebook data globallyJan 12 17:46
TechBytesBot-> www.bigbrotherwatch.org.uk | British police are third highest users of Facebook data globally | Big Brother Watch  [ http://ur1.ca/gefdr ]Jan 12 17:46
schestowitz"but Facebook is the voice of Bill Gates, so the transparency report is worth less than it would be if they printed it on toilet paper.|Jan 12 17:46
**** BEGIN LOGGING AT Sun Jan 12 20:53:38 2014
*Now talking on #techbytesJan 12 20:53
*Topic for #techbytes is: Welcome to the official channel of the TechBytes AudiocastJan 12 20:53
*Topic for #techbytes set by ThistleWeb!~gordon@unaffiliated/thistleweb at Wed Jan 5 20:55:35 2011Jan 12 20:53
*Disconnected (Connection timed out).Jan 14 07:25
**** ENDING LOGGING AT Tue Jan 14 07:25:50 2014
**** BEGIN LOGGING AT Tue Jan 14 07:26:17 2014
*Now talking on #techbytesJan 14 07:26
*Topic for #techbytes is: Welcome to the official channel of the TechBytes AudiocastJan 14 07:26
*Topic for #techbytes set by ThistleWeb!~gordon@unaffiliated/thistleweb at Wed Jan 5 20:55:35 2011Jan 14 07:26
*pidgin_log (~roy@host86-129-135-21.range86-129.btcentralplus.com) has joined #techbytesJan 14 07:28
*MinceR_ (~mincer@unaffiliated/mincer) has joined #techbytesJan 14 08:52
*MinceR has quit (Ping timeout: 260 seconds)Jan 14 08:56
*MinceR_ is now known as MinceRJan 14 09:00
*Guest2767 (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 14 14:21
*Guest2767 is now known as schestowitzJan 15 14:30
*schestowitz is now known as roy__Jan 15 14:30
*roy__ is now known as Guest45705Jan 15 14:30
*Guest45705 has quit (Remote host closed the connection)Jan 15 14:32
*schestowitz (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 15 14:35
schestowitz__https://joindiaspora.com/posts/3519041Jan 15 18:55
TechBytesBot@schestowitz@joindiaspora.com: The Slaughter of a Wedding Party in Yemen: Anatomy of a Bad Drone Strike  http://www.huffingtonpost.com/brian-glyn-williams/the-slaughter-of-a-weddin_b_4595274.html this harms everyone's securityJan 15 18:55
TechBytesBot-> www.huffingtonpost.com | The Slaughter of a Wedding Party in Yemen: Anatomy of a Bad Drone Strike | Brian Glyn Williams  [ http://ur1.ca/gfel7 ]Jan 15 18:55
schestowitz__":Obviously they were all enemy combatants!"Jan 15 18:55
schestowitz__They resisted the curfew of drones :-)Jan 15 18:55
schestowitz__https://joindiaspora.com/posts/3519513Jan 15 19:23
TechBytesBot@schestowitz@joindiaspora.com: "Google has launched a simple way to filter Google images by reuse rights." http://lessig.tumblr.com/post/73299449182/glorious-day-google-has-launched-a-simple-way-toJan 15 19:23
TechBytesBot-> lessig.tumblr.com | Lessig Blog, v2  [ http://ur1.ca/gfekn ]Jan 15 19:23
schestowitz__"'bout time."Jan 15 19:23
schestowitz__https://joindiaspora.com/posts/3519760Jan 15 19:34
TechBytesBot@schestowitz@joindiaspora.com reshared: ### Global Campaign for the 4 Hour WorkdayJan 15 19:34
TechBytesBot  Photo by sylviaj@joindiaspora.com: https://joindiaspora.s3.amazonaws.com/uploads/images/thumb_medium_907354e440edd92b41c5.jpgJan 15 19:34
TechBytesBot-> www.4hourworkday.org | Global Campaign for the 4 Hour Work-dayJan 15 19:34
schestowitz__"This won't suit civilizations where greedy people dominate."Jan 15 19:34
schestowitz__https://joindiaspora.com/posts/3521726Jan 15 19:35
TechBytesBot@schestowitz@joindiaspora.com: Jacob Appelbaum's talk made it sound as though #Nightstand was a rarely used tool, not attached to ~100,000 nodes/points.Jan 15 19:35
schestowitz__"100,000 is small scale for what we've learned of NSA spying."Jan 15 19:35
schestowitz__This requires a physical planting phase... unlike s/w and cracking.Jan 15 19:35
*pidgin_log has quit (Quit: Leaving.)Jan 16 09:02
*pidgin_log (~roy@host86-129-135-21.range86-129.btcentralplus.com) has joined #techbytesJan 16 17:46
*schestowitz_log has quit (Ping timeout: 252 seconds)Jan 16 17:47
schestowitz__>> SJVN advertises Microsoft. How weird.Jan 16 19:05
schestowitz__>> <http://www.zdnet.com/convirture-announces-easy-to-use-hyper-v-management-platform-7000025209/>Jan 16 19:05
TechBytesBotwww.zdnet.com | Convirture announces easy-to-use Hyper-V management platform | ZDNet  [ http://ur1.ca/gfig4 ]Jan 16 19:05
schestowitz__>> The whole thing smells like a product placement.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> Strange.  That's not like SJVN.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> I also saw a spam or troll the other day asking about using apt-get inJan 16 19:05
schestowitz__> openbsd, on hyper-v.  It was from an MSN.com address.  The lubuntuJan 16 19:05
schestowitz__> users' list also had an MSN troll come along recently, promotingJan 16 19:05
schestowitz__> Facebook and apparently succeeding in moving some discussion off theJan 16 19:05
schestowitz__> list and onto Facebook.  The thread got caught in Gmail's spam filter soJan 16 19:05
schestowitz__> I did not participate beyond an initial too polite rebuttal.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> Along those lines, Theo de Raadt mentioned M$ several times in a talkJan 16 19:05
schestowitz__> entitled "Exploit Mitigation Techniques: an Update After 10 Years" atJan 16 19:05
schestowitz__> ruBSD.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> http://undeadly.org/cgi?action=article&sid=20140115054839&mode=flat&count=0Jan 16 19:05
TechBytesBotundeadly.org | ruBSD: interviews with Theo and Henning  [ http://ur1.ca/gfqoe ]Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> He even dodged a question about M$ circumventing the very mitigationJan 16 19:05
schestowitz__> techniques of his that he was bragging they implemented.  Also the talkJan 16 19:05
schestowitz__> was to be about "The bane of backwards compatibility", which would haveJan 16 19:05
schestowitz__> hurt M$ even if it was not mentioned.  However, he changed the topic ofJan 16 19:05
schestowitz__> the talk to be about exploit mitigation instead.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> I hope that nothing nefarious has been  going on and that openbsd hasJan 16 19:05
schestowitz__> not jumped the shark.  It has been a darn useful project, contributingJan 16 19:05
schestowitz__> indirectly to other distros.  OpenSSH is used just about everywhere, PFJan 16 19:05
schestowitz__> is used in a few places (even at Apple) and many improvements toJan 16 19:05
schestowitz__> programming methods are widely used.  Now, post-leaks, even somethingJan 16 19:05
schestowitz__> mundane like support for non x86 architectures is exceptionally important.Jan 16 19:06
schestowitz__>Jan 16 19:06
schestowitz__> The project is now on the rocks:Jan 16 19:06
schestowitz__>Jan 16 19:06
schestowitz__> http://bsd.slashdot.org/story/14/01/15/1719244/openbsd-looking-at-funding-shortfall-in-2014Jan 16 19:06
schestowitz__>Jan 16 19:06
TechBytesBotbsd.slashdot.org | OpenBSD Looking At Funding Shortfall In 2014 - Slashdot  [ http://ur1.ca/gfqog ]Jan 16 19:06
schestowitz__> If each of the big companies that use OpenSSH would pony up someJan 16 19:06
schestowitz__> marketing money to the tune of 4 digits, then operations would beJan 16 19:06
schestowitz__> secure.  As far as marketing goes, that's not even any noticeable sumJan 16 19:06
schestowitz__> and not only does it generate practical results, it would produce a lotJan 16 19:06
schestowitz__> of good will.Jan 16 19:06
schestowitz__>Jan 16 19:06
schestowitz__> https://developer.apple.com/library/mac/documentation/darwin/reference/manpages/man5/pf.conf.5.htmlJan 16 19:06
TechBytesBotdeveloper.apple.com | pf.conf(5) Mac OS X Manual Page  [ http://ur1.ca/gfqoh ]Jan 16 19:06
schestowitz__> https://developer.apple.com/library/mac/documentation/darwin/reference/manpages/man1/ssh.1.htmlJan 16 19:06
TechBytesBotdeveloper.apple.com | ssh(1) Mac OS X Manual Page  [ http://ur1.ca/gfqoi ]Jan 16 19:06
schestowitz__> https://developer.apple.com/library/mac/documentation/darwin/reference/manpages/man5/sshd_config.5.htmlJan 16 19:06
TechBytesBotdeveloper.apple.com | sshd_config(5) Mac OS X Manual Page  [ http://ur1.ca/gfqoj ]Jan 16 19:06
schestowitz__>Jan 16 19:06
schestowitz__>Jan 16 19:06
schestowitz__https://joindiaspora.com/posts/3523066Jan 16 20:07
schestowitz__"Jan 16 20:07
TechBytesBot@schestowitz@joindiaspora.com: #alexnader lied to Congress and others (inc. oversight) just like #clapper - numerous times in fact. When will they be put in prison? #nsaJan 16 20:07
schestowitz__How is that Clinton got impeachment for lying about having an affair, and those people can lie freely about spying everyone?Jan 16 20:07
schestowitz__Great democracy they have.Jan 16 20:07
schestowitz__"Jan 16 20:07
schestowitz__https://joindiaspora.com/posts/3522766Jan 16 20:08
TechBytesBot@schestowitz@joindiaspora.com: "government had deal with Mexican drug cartel Sinaloa that allowed the group to smuggle billion of dollars of drugs" http://rt.com/usa/sinaloa-drug-cartel-deal-dea-551/Jan 16 20:08
TechBytesBot-> rt.com | ​US govt struck deal with Mexican drug cartel in exchange for info - report — RT USA  [ http://ur1.ca/gfr1g ]Jan 16 20:08
schestowitz__"The US government can make deals and offer amnesty to narcs, but not to people like Snowden. Good to know."Jan 16 20:08
schestowitz__https://twitter.com/Americana777/status/423876525872521216Jan 16 20:15
TechBytesBot@Americana777: @schestowitz 2 way streetJan 16 20:15
schestowitz__ouch... ixquick still uses MSFT for imagesJan 16 20:26
schestowitz__and blinkx for videosJan 16 20:26
schestowitz__http://www.blinkx.com/corporate/about/privacy-policyJan 16 20:26
TechBytesBotwww.blinkx.com | Privacy Policy - blinkx  [ http://ur1.ca/gfr4h ]Jan 16 20:26
schestowitz__https://joindiaspora.com/posts/3522831Jan 16 20:28
TechBytesBot@schestowitz@joindiaspora.com: #Monsanto is one of the best examples I can think of when you wish to show that crime pays off. Reward for genocide, mortality, bribes, etc.Jan 16 20:28
schestowitz__"Corporations are in the business of making money, not making people happy."Jan 16 20:28
schestowitz__https://joindiaspora.com/posts/3523116Jan 16 20:28
TechBytesBot@schestowitz@joindiaspora.com: Your choice: #Cinnamon or #MATE http://www.linuxbsdos.com/2014/01/10/your-choice-cinnamon-or-mate/ #gnome #gnu #linuxJan 16 20:28
TechBytesBot-> www.linuxbsdos.com | Your choice: Cinnamon or MATE | LinuxBSDos.com  [ http://ur1.ca/gfr4y ]Jan 16 20:28
schestowitz__"How did you know %)? I am a #MATE user, yes."Jan 16 20:28
schestowitz__https://joindiaspora.com/posts/3520345Jan 16 20:30
TechBytesBot@schestowitz@joindiaspora.com: Epiphany Web Browser Now Uses HTTPS for Google Searches by Default http://news.softpedia.com/news/Epiphany-Web-Browser-Now-Uses-HTTPS-for-Google-Searches-by-Default-416947.shtml why use Google at all?Jan 16 20:30
TechBytesBot-> news.softpedia.com | Epiphany Web Browser Now Uses HTTPS for Google Searches by Default  [ http://ur1.ca/gff0w ]Jan 16 20:30
schestowitz__" http://d.bluszcz.net/ads.png - it shows with second search."Jan 16 20:30
schestowitz__"Google Ads It appears with second search"Jan 16 23:37
schestowitz__https://joindiaspora.com/posts/3520345Jan 16 23:37
schestowitz__"google is everywhere"Jan 16 23:37
schestowitz__https://joindiaspora.com/posts/3523384Jan 16 23:43
TechBytesBot@schestowitz@joindiaspora.com reshared:Jan 16 23:43
TechBytesBot  Photo by dubbelmubbel@despora.de: https://despora.de/uploads/images/thumb_medium_4d7617388987a4924729.jpegJan 16 23:43
TechBytesBot  Photo by dubbelmubbel@despora.de: https://despora.de/uploads/images/thumb_medium_4d7617388987a4924729.jpegJan 16 23:43
schestowitz__Man, if that ain't the truth."77"Jan 16 23:43
schestowitz__"Hey! I enjoy my half a pillow and edge of the blankets. ;)"Jan 16 23:43
schestowitz__"And then, when you co-sleep with your baby and her mother, it diminishes again by a half.'Jan 16 23:44
schestowitz__"Sure need a bigger bed for that though."Jan 16 23:44
schestowitz__"It does not matter how big your bed is, your side will be the size of a coffin."Jan 16 23:44
schestowitz__"Guy - Wait until it's co-sleeping with two kids! We seriously had two queen size mattresses next to each other."Jan 16 23:44
schestowitz__https://joindiaspora.com/posts/3525253Jan 16 23:45
TechBytesBot@schestowitz@joindiaspora.com: The #fanatic patent aggressor, Apple, is trying to cuddle with #kde http://lists.kde.org/?l=kfm-devel&m=104197092318639&w=2 send #apple to "Trash"Jan 16 23:45
schestowitz__"Again?"Jan 16 23:45
TechBytesBot-> lists.kde.org | '(fwd) Greetings from the Safari team at Apple Computer' - MARC  [ http://ur1.ca/gflwi ]Jan 16 23:45
schestowitz__"Just smile sweetly and graciously ask for the stuff that would help our projects. Give nothing in return but the publicly available, free software licensed code we share with everyone."Jan 16 23:45
schestowitz__"This is from 2003 though!"Jan 16 23:45
schestowitz__"That email was from 2003. Am I missing something?"Jan 16 23:45
schestowitz__"A wormhole in the space-time continuum."Jan 16 23:46
schestowitz__"If they are asking for more again, it's wroth remembering how they sweet talked then. In fact, it's worth remembering in any case. Don't buy or promote Apple."Jan 16 23:46
schestowitz__https://joindiaspora.com/posts/3525773Jan 16 23:48
TechBytesBot@schestowitz@joindiaspora.com: #Security Expert Bruce Schneier Says to Foil NSA Spies, Encrypt EverythingJan 16 23:48
TechBytesBot-> www.businessweek.com | Security Expert Bruce Schneier Says to Foil NSA Spies, Encrypt Everything - Businessweek  [ http://ur1.ca/gfs54 ]Jan 16 23:48
schestowitz__"I know he's an expert, but really all that does is ensure whatever you're encrypting they will copy for certain and keep forever. I'm not saying don't encrypt things, but many of the documents that have been released thus far emphasize the fact that all encrypted traffic is copied and stored indefinitely."Jan 16 23:48
*schestowitz__ has quit (Remote host closed the connection)Jan 17 21:49
*schestowitz__ (~schestowi@host86-129-135-21.range86-129.btcentralplus.com) has joined #techbytesJan 17 21:49
*schestowitz__ has quit (Changing host)Jan 17 21:49
*schestowitz__ (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 17 21:49
schestowitz__https://joindiaspora.com/posts/3520345Jan 17 22:25
schestowitz__"wow, I tried that but didn't see any google... maybe my adblock is blocking it?"Jan 17 22:25
schestowitz__https://joindiaspora.com/posts/3527378Jan 17 22:26
TechBytesBot@schestowitz@joindiaspora.com: When a friend of yours -- or even a business -- wishes to borrow your money (to lend out to others at 10% APR) would you PAY him/her/it?Jan 17 22:26
schestowitz__"Atleast not with a friend, since it could spoil the friendship if things go awry"Jan 17 22:26
schestowitz__https://joindiaspora.com/posts/3528322Jan 17 22:32
TechBytesBot@schestowitz@joindiaspora.com: Oppressive action requires strong reaction http://news.techeye.net/business/turn-off-the-nsas-power-campaign-underwayJan 17 22:32
schestowitz__"Agreed."Jan 17 22:32
TechBytesBot-> news.techeye.net | Turn off the NSA’s power campaign underway - Cray could be banned from selling computer parts  | TechEye  [ http://ur1.ca/gfzb6 ]Jan 17 22:32
schestowitz__https://joindiaspora.com/posts/3528393Jan 17 22:32
TechBytesBot@schestowitz@joindiaspora.com: The #NSA Lied About Collecting Hundreds of Millions of Texts a Day, and Everything ElseJan 17 22:32
TechBytesBot-> motherboard.vice.com | The NSA Lied About Collecting Hundreds of Millions of Texts a Day, and Everything Else | Motherboard  [ http://ur1.ca/gfzbc ]Jan 17 22:32
schestowitz__"Oops. An honest mistake, lads... wink wink"Jan 17 22:32
schestowitz__https://joindiaspora.com/posts/3529395Jan 17 22:35
TechBytesBot@schestowitz@joindiaspora.com: When Bradley/Chelsea Manning was described by corporate media as depressed (imposed by conditions or false) it helped 'official' narrativeJan 17 22:35
schestowitz__"Sometimes a cigar is just a cigar. The very fact that Bradley became Chelsea is indicative of someone who probably wasn't happy with who they were and did suffer through periods of depression. Just because it helps the 'official' narrative doesn't make it not true. And just because you are paranoid doesn't mean they aren't out to get you. :)"Jan 17 22:35
schestowitz__https://joindiaspora.com/posts/3528114Jan 17 22:35
TechBytesBot@schestowitz@joindiaspora.com reshared: ### How do you recognize the NSA #headquarter?Jan 17 22:35
schestowitz__"Is that some kind of error message on the screen?"Jan 17 22:35
schestowitz__https://joindiaspora.com/posts/3528057Jan 17 22:36
TechBytesBot@schestowitz@joindiaspora.com: Raspberry Pi: 11 reasons why it's the perfect small server http://www.zdnet.com/raspberry-pi-11-reasons-why-its-the-perfect-small-server-7000025206/ #raspberrypi #linuxJan 17 22:36
schestowitz__"I would like to have one just for fun."Jan 17 22:36
TechBytesBot-> www.zdnet.com | Raspberry Pi: 11 reasons why it's the perfect small server | ZDNet  [ http://ur1.ca/gfzcj ]Jan 17 22:36
schestowitz__http://www.ombudsman.org.uk/accessibilityJan 17 22:58
TechBytesBotwww.ombudsman.org.uk | Accessibility  [ http://ur1.ca/gfzk0 ]Jan 17 22:58
schestowitz__"To view and print Portable Document Format (PDF) files, you need the free Adobe Reader software. If you don't have Adobe Reader already, you can download it from www.adobe.com external link opens in new window. Follow the link titled 'Get Adobe Reader'."Jan 17 22:58
schestowitz__"You can view and print Microsoft Word files from Microsoft Word itself or several other word processing packages. Microsoft offer the free Microsoft Word Viewer as a download for Windows users that don't have a suitable word processor. The viewer is available from the Office section of www.microsoft.com.external link opens in new window"Jan 17 22:58
schestowitz__> On Sat, 2014-01-18 at 01:14 +0000, Roy Schestowitz wrote:Jan 18 01:38
schestowitz__>>> ...is here:Jan 18 01:38
schestowitz__>>>Jan 18 01:38
schestowitz__>>> http://ftp.redhat.com/redhat/linux/enterprise/6Server/en/os/SRPMS/Jan 18 01:38
schestowitz__>>>Jan 18 01:38
schestowitz__>>> do feel free to peruse it at your leisure.Jan 18 01:38
TechBytesBotftp.redhat.com | Index of /redhat/linux/enterprise/6Server/en/os/SRPMS  [ http://ur1.ca/gg0as ]Jan 18 01:38
schestowitz__>>>Jan 18 01:38
schestowitz__>>> No, you don't know the entire build chain - but then you don't knowJan 18 01:38
schestowitz__>>> the entire CentOS build chain either.Jan 18 01:38
schestowitz__>>Jan 18 01:38
schestowitz__>> Right, but it's about trust then. Red Hat works with DOD and peopleJan 18 01:38
schestowitz__>> near those circles warned me a bit. Also, as we have CESG as a clientJan 18 01:38
schestowitz__>> I know their concerns about build chains.Jan 18 01:38
schestowitz__>Jan 18 01:38
schestowitz__> You know CESG has certified RHEL 6 as EAL 4+, right?Jan 18 01:38
schestowitz__I remember something to that effect.Jan 18 01:38
schestowitz__ Jan 18 01:38
schestowitz__>>  I trust the NSA as much as IJan 18 01:38
schestowitz__>> trust China and Red Hat as much as I trust Huawei (also a client ofJan 18 01:38
schestowitz__>> ours).Jan 18 01:38
schestowitz__>Jan 18 01:38
schestowitz__> Welp, I'm pretty sure absolutely any OS you can run has been written byJan 18 01:38
schestowitz__> people using hardware produced in China and compiled on hardwareJan 18 01:38
schestowitz__> produced in China. So, y'know, you're kinda boned already.Jan 18 01:38
schestowitz__Yes, but that doesn't exempt the OS from having to demostrate trust. If we start with a defeatist's position, then we lose no matter what...Jan 18 01:38
schestowitz__>>  Some years ago I read about China making RHEL derivatives withJan 18 01:38
schestowitz__>> back doors (binary distribution); after all the NSA leaks can weJan 18 01:38
schestowitz__>> assume that the West does not engage in similar behaviour? It's aboutJan 18 01:38
schestowitz__>> who builds it, and who /with/. NSA hands over patched to RHT employeesJan 18 01:38
schestowitz__>> now (they say so, it's not just SELinux)Jan 18 01:38
schestowitz__>Jan 18 01:39
schestowitz__> Well, of course they do. They're an RH customer, and most of our majorJan 18 01:39
schestowitz__> customers contribute patches. But it's not like we just apply themJan 18 01:39
schestowitz__> blindly.Jan 18 01:39
schestowitz__>Jan 18 01:39
schestowitz__> If the NSA was going to try and backdoor RHEL (or any other piece ofJan 18 01:39
schestowitz__> software), do you really think they'd do it by sending a patch with aJan 18 01:39
schestowitz__> backdoor in it via their usual submission channels, which clearlyJan 18 01:39
schestowitz__> identify that code as coming from the NSA? Don't you think they'd tryJan 18 01:39
schestowitz__> and get it in in a way which did not involve making it screaminglyJan 18 01:39
schestowitz__> obvious that code had come from the NSA? (e.g., have an NSA mole workingJan 18 01:39
schestowitz__> for some other company submit it...)Jan 18 01:39
schestowitz__That's one risk factor that I named. But I suspect a lot of backdoors are not in upstream code; the NSA usually steps in (publicly) when the build process starts (at Microsoft, Apple, SUSE, and Red Hat).Jan 18 01:39
schestowitz__>>  and the build involves theJan 18 01:39
schestowitz__>> NSA, AFAIK.Jan 18 01:39
schestowitz__>Jan 18 01:39
schestowitz__> I don't know what this means, but afaik, all RH stuff is built onJan 18 01:39
schestowitz__> systems owned by RH, on RH facilities. But I'm hardly an expert.Jan 18 01:39
schestowitz__>Jan 18 01:39
schestowitz__>>> You could bootstrap the entire thing locally, but do you trustJan 18 01:39
schestowitz__>>> your compiler?Jan 18 01:39
schestowitz__>>Jan 18 01:39
schestowitz__>> Yes, the GNU compiler is quite trustworthy (FSF et al.), and there areJan 18 01:39
schestowitz__>> many projects that include it and watch the build process.Jan 18 01:39
schestowitz__>Jan 18 01:39
schestowitz__> Well, GCC isn't anywhere near the only compiler involved in building aJan 18 01:39
schestowitz__> modern distro from the ground up...Jan 18 01:39
schestowitz__lex and yacc and other tools that make up gcc may often suffice.Jan 18 01:39
schestowitz__>>> Well, okay, so write your own compiler. But do you trust yourJan 18 01:39
schestowitz__>>> system's firmware?Jan 18 01:39
schestowitz__>>Jan 18 01:39
schestowitz__>> No, firmware is a known problem and hardware in general is a threat,Jan 18 01:39
schestowitz__>> especially not if it's something with UEFI for instance... we recentlyJan 18 01:39
schestowitz__>> heard about BIOS as a bricking mechanism. But pointing to levels belowJan 18 01:39
schestowitz__>> the OS is basically diverting attention to other perceived threats.Jan 18 01:39
schestowitz__>Jan 18 01:39
schestowitz__> It's not really, it's just pointing out that if you really want to beJan 18 01:39
schestowitz__> absolutely sure you can trust your software, it's a *hell* of a job. TheJan 18 01:39
schestowitz__> NSA does this for its own purposes, of course: for very sensitive stuffJan 18 01:39
schestowitz__> they use a customized Linux build which they have assessed from theJan 18 01:39
schestowitz__> ground up, AIUI. But it's pretty difficult for anyone else to manageJan 18 01:40
schestowitz__> that level of certainty.Jan 18 01:40
schestowitz__>Jan 18 01:40
schestowitz__> When the Snowden stuff came out, it kicked off a thread on an internalJan 18 01:40
schestowitz__> RH list about whether it would be possible to somehow assert/test theJan 18 01:40
schestowitz__> integrity of the RHEL binaries. The general consensus was 'yes, but itJan 18 01:40
schestowitz__> would take a hell of a lot of resources'.Jan 18 01:40
schestowitz__Understood, we do that too. But talking about infeasibility does not prove safety.Jan 18 01:40
schestowitz__>>> The rabbit hole goes down a long way, you know...Jan 18 01:40
schestowitz__>>Jan 18 01:40
schestowitz__>> Yes, which is what RMS was right on many things and we need toJan 18 01:40
schestowitz__>> encourage transparency in the whole process, and increase indpendentJan 18 01:40
schestowitz__>> peer review.Jan 18 01:40
schestowitz__>Jan 18 01:40
schestowitz__> Anyway, it would be nice if you'd correct your article, since it seemsJan 18 01:40
schestowitz__> to be asserting that RHEL source is not available to anyone. ItJan 18 01:40
schestowitz__> certainly is. We have a legal obligation to provide all the GPL sourcesJan 18 01:40
schestowitz__> to anyone who buys RHEL, of course, and so we do. We don't have a legalJan 18 01:40
schestowitz__> obligation to provide the GPL sources to anyone else, or the moreJan 18 01:40
schestowitz__> liberally-licensed sources to anyone, but we do so anyway, at the URL IJan 18 01:40
schestowitz__> gave you. How do you think CentOS gets built otherwise?Jan 18 01:40
schestowitz__"In retaliation, Red Hat started shipping Linux kernel source code in a big tarball with the patches already applied, making it more difficult to build Linux distributions from the RHEL source" -CentOSJan 18 01:40
schestowitz__>> "In retaliation, Red Hat started shipping Linux kernel source code inJan 18 02:00
schestowitz__>> a big tarball with the patches already applied, making it moreJan 18 02:00
schestowitz__>> difficult to build Linux distributions from the RHEL source" -CentOSJan 18 02:00
schestowitz__>Jan 18 02:00
schestowitz__> Sigh, I'm really sick of that whole thing. My personal opinion is thatJan 18 02:00
schestowitz__> we shouldn't have done it, but it really isn't a huge stinking deal. TheJan 18 02:00
schestowitz__> kernel .src.rpm contains all the source code. It's not all split outJan 18 02:00
schestowitz__> nicely into patches, but it contains all the source code. The code thatJan 18 02:00
schestowitz__> builds the RHEL kernel is all in it.Jan 18 02:00
schestowitz__SUSE does even worse things. I wrote about it like 6 years ago. But Oracle is another dodgy one. Given what seems like back doors in Oracle DBs can we ever trust its RHEL clone? And if not, in what respects is RHEL better? I think trust has been eroded and obfuscation through patches contributes to distrust.Jan 18 02:00
schestowitz__>> That's one risk factor that I named. But I suspect a lot of backdoorsJan 18 02:01
schestowitz__>> are not in upstream code; the NSA usually steps in (publicly) when theJan 18 02:01
schestowitz__>> build process starts (at Microsoft, Apple, SUSE, and Red Hat).Jan 18 02:01
schestowitz__>Jan 18 02:01
schestowitz__> You keep asserting this, without providing a shred of substantiation.Jan 18 02:01
schestowitz__> It's a pretty bold claim to be making, and one that you *really* oughtJan 18 02:01
schestowitz__> to have some support for before printing, IMHO.Jan 18 02:01
schestowitz__There were corporate media reports about it around 2008 (sites like IDG's sites, IIRC). I can search for it if you're very interested.Jan 18 02:01
*oiaohm (~oiaohm@unaffiliated/oiaohm) has joined #techbytesJan 18 10:31
*oiaohm has quit (Quit: Konversation terminated!)Jan 18 12:12
schestowitz__"Jan 18 18:20
schestowitz__>>> As for a smoking gun, it is unlikely to be published on purpose by theJan 18 18:20
schestowitz__>>> parties involved.  We'll have to wait for existing or future leaks toJan 18 18:20
schestowitz__>>> enlighten us.  NSLs and other methods would prevent that otherwise.  RedJan 18 18:20
schestowitz__>>> Hat is a very large company and unlikely to have been overlooked byJan 18 18:20
schestowitz__>>> PRISM or related programmes.  But you already wrote about that in RedJan 18 18:20
schestowitz__>>> Hat in November.  Those that have been contacted are mostly not free toJan 18 18:20
schestowitz__>>> speak up.Jan 18 18:21
schestowitz__>>Jan 18 18:21
schestowitz__>> or maybe they are tempted to speak out but have a mortgage to pay.Jan 18 18:21
schestowitz__>Jan 18 18:21
schestowitz__> PJ labelled that the Yuppie Nuremburg defense.  It's common.Jan 18 18:21
schestowitz__> I hope she is doing well.  Groklaw is sure missed.Jan 18 18:21
schestowitz__Thank You for Smoking Yuppie Nuremburg defense, PJ attributed the film.Jan 18 18:21
schestowitz__I have not heard from PJ in ages. She really is serious about bailing out this time. I did hear from someone who had spoken to her some months ago.Jan 18 18:21
schestowitz__The "nothing wrong, nothing to hide" defence is bogus, BUT... in PJ's case, I have to wonder how many times IBM goons passed her "scoops" and info (not just IBM), as I happen to have confronted those goons... one time over the phone for an hour... and the IBM goon tried to use his daughter as some kind of Yuppie Nuremburg defense.Jan 18 18:21
schestowitz__Maybe I have become too cynical and thus a little too hostile towards many whom I view as selling us out (as a collective society) for a quick buck, much like today's cops.Jan 18 18:21
schestowitz__I believe you already know, based on what I told you in 2010, that Tim from techbytes was a cop, and I suspect he was spying on us when we were leaking documents and stuff. There's lots more I can tell you given the time (we have encryption), e.g.:Jan 18 18:21
schestowitz__-Tim was infiltrating racist groups, adapting with fake facial hair, tattoos (IIRC), fake ID, etc.Jan 18 18:21
schestowitz__-Tim's dad is a high-level police officer. He is also a freemason. I met him and his wife. Nice people, offered to visit here in Manchester, and the dad looks like Prescott. Since I read the bombshell about freemason infiltrating US police and spying complex (see The Independent report from last week) I have had worrisome thoughts about it.Jan 18 18:21
schestowitz__-Tim claims to have had a hard time in the police. He says he's quitting and is moving to the US in April... with the family. Very odd. But I hope he never lied to me. I never really caught him lying. And given his pro-copyright reform views and other views (anti-queen) I can understand why the Cult of UK police had to push him out... I hope he wasn't using that just to bait people. Either way, lots more that I can say about it.Jan 18 18:21
schestowitz__Other mind dumps:Jan 18 18:21
schestowitz__- Still thinking PJ used privacy as **partly** an excuse (which she can actually make herself believe in).Jan 18 18:21
schestowitz__- A lot of funny things going on in UK, and some messages I receive remind me I need to be careful and keep my wife informed at all times. I can elaborate if you wish...Jan 18 18:21
schestowitz__- Been speaking to the 'British Snowden', Machon. RMS spoke to her also. I think I might be wrong about Tim, but I need to stay careful.Jan 18 18:21
schestowitz__- A relative from Bradford got looted by some scammer from Africa... fell into massive debt and the British police is not helping. Disgusting. I lost all faith in what's perceived to be "necessary" function of police.Jan 18 18:21
schestowitz__Finally, to end with something a little more cohesive, as my tweets, d* posts etc. serve to show, I am getting more fascinated by and intrested in what wikileaks et al. are doing. they bang on the right door. Today at the gym I spoke to an old friend of mine about it and he correctly pointed out that the CIA would have killed Snowden and others if they could (before risking Streisand Effect)... and we need those people in order toJan 18 18:21
schestowitz__save today's young children, who are given the gift of personal/student debt to keep them paralysed. The money is there to pay back loans, but only a few people hoard all the money and then hide it. That's why we need leaks, and we need FOSS to enable them to come out safely. RMS also became increasingly interested in all that stuff, which has become a serious subject of national interest. I recently started posting in Tumblr (yes,Jan 18 18:21
schestowitz__Yahoo) some Linux links (see reallinux.tumblr.com). it's an account given to me by a lad in Switzerland who likes Linux.... I still cover FOSS and Linux as much as needed, but i rely mostly on IRC for links regarding Microsoft (departing execs, scandals, etc.)Jan 18 18:21
schestowitz__My wife helps a lot around here, doing all the house work and beyond, bringing in a wage, posting in Tux machines, etc. so I can probably keep up posting at a decent volume (output as measured in terms of # of news stories I can keep abreast of). I don't have any megalomania over it; it's just very fascinating and fun to see the degree to what individuals can drive change. I think debt of all sorts is an evil that's now a principalJan 18 18:21
schestowitz__vehicle by which to paralyse resistance and I see how bankers use ridicule and disinfo trying to see us too some loans...Jan 18 18:21
schestowitz__I promise something cohesive, but I ended up just dumping a whole lot of personal material -- stuff I'd never really post in public.Jan 18 18:21
schestowitz__"Jan 18 18:21
schestowitz__> We share a lot of the same concerns.  If you are ever in Rovaniemi forJan 18 19:08
schestowitz__> skiing or snowboarding we can go into more detail.Jan 18 19:08
schestowitz__I will seriously consider that.Jan 18 19:08
schestowitz__> I'm not able to write much these days, the writing is just too hard forJan 18 19:08
schestowitz__> the time being.  Maybe it will get easier if I finish writing aJan 18 19:08
schestowitz__> bibliographic management package.  The search engines are just tooJan 18 19:08
schestowitz__> ephemeral.  Search terms that work one week bring up totally differentJan 18 19:08
schestowitz__> material later.   In general, there are fewer and fewer voices onlineJan 18 19:08
schestowitz__> these days so your posts are increasingly important.Jan 18 19:08
schestowitz__>Jan 18 19:08
schestowitz__> I'll send the fresh links as I find them.Jan 18 19:08
schestowitz__Search engines now act as censorship.Jan 18 19:08
schestowitz__Search engines disguise censorship as personalisation.Jan 18 19:08
schestowitz__Search engines sometimes use the idea of improving based on location.Jan 18 19:08
schestowitz__Search engines are very dangerous tools.Jan 18 19:08
schestowitz__Once upon a time when I used the Net (mid nineties) I used portals.Jan 18 19:08
schestowitz__Now we have a bunch of few US companies controlling acccess to info (act as gateway), directly or indirectly (meta-SEs).Jan 18 19:08
schestowitz__This is a bit scary.Jan 18 19:08
schestowitz__We might have censorship in the West, without it being announced.Jan 18 19:08
schestowitz__My favourite SE that I recommended has now expanded from .NL to NYC (offices and DC). Their staff is in damage control mode in my postings. They kept quite quiet about Google deal last year... they now serve Google ads under the pretext of "shutting down" otherwise... and they use Microsoft for images. I don't know what SE I can trust now.Jan 18 19:08
schestowitz__A lot of people access the Web though SEs, which also come under threats by copyright and political processes.Jan 18 19:08
schestowitz__Anyway, the point is that a lot of censorship is covertly introduced now by government-propped-up and controlled (and exploited) companies that can afford to index the Web while profiling sites and users. It's about control and rther than emancipate ourselves using the Web we have it used as an infomant against us.Jan 18 19:08
*puppywatch__ has quit (*.net *.split)Jan 18 21:19
*libertyboxes has quit (*.net *.split)Jan 18 21:19
*puppywatch__ (~PuppyWatc@host86-129-135-21.range86-129.btcentralplus.com) has joined #techbytesJan 18 21:21
*libertyboxes (~liberty@host86-129-135-21.range86-129.btcentralplus.com) has joined #techbytesJan 18 21:21
MERGE
schestowitz>> 1. Whether it'll be possible to make space for the Gallery2 DB (aboutJan 12 02:03
schestowitz>> 3 GB, more than what's currently available), which contains a lot ofJan 12 02:03
schestowitz>> screenshots DistroWatch links to:Jan 12 02:03
schestowitz>>Jan 12 02:03
schestowitz>> 10323768 6967364 2834308 72% /varJan 12 02:03
schestowitz>Jan 12 02:03
schestowitz> Actually, I just extended /var by a gig the other day because I noticed it wasJan 12 02:03
schestowitz> around 95%. The machine currently has 31G of disk space unallocated:Jan 12 02:03
schestowitz>Jan 12 02:03
schestowitz> [root@techrights httpd]# /sbin/vgdisplayJan 12 02:03
schestowitz> --- Volume group ---Jan 12 02:03
schestowitz> VG Name               sysvgJan 12 02:03
schestowitz> System IDJan 12 02:03
schestowitz> Format                lvm2Jan 12 02:03
schestowitz> Metadata Areas        1Jan 12 02:03
schestowitz> Metadata Sequence No  7Jan 12 02:03
schestowitz> VG Access             read/writeJan 12 02:03
schestowitz> VG Status             resizableJan 12 02:03
schestowitz> MAX LV                0Jan 12 02:03
schestowitz> Cur LV                3Jan 12 02:03
schestowitz> Open LV               3Jan 12 02:03
schestowitz> Max PV                0Jan 12 02:04
schestowitz> Cur PV                1Jan 12 02:04
schestowitz> Act PV                1Jan 12 02:04
schestowitz> VG Size               72.09 GiBJan 12 02:04
schestowitz> PE Size               32.00 MiBJan 12 02:04
schestowitz> Total PE              2307Jan 12 02:04
schestowitz> Alloc PE / Size       1308 / 40.88 GiBJan 12 02:04
schestowitz> Free  PE / Size       999 / 31.22 GiBJan 12 02:04
schestowitz> VG UUID               JV3z2S-SFrK-7c9a-dr4o-nN6B-BJlj-cjZ3ZOJan 12 02:04
schestowitz>Jan 12 02:04
schestowitz> We can create a new lv for some of this stuff or we can just extend /var. IJan 12 02:04
schestowitz> think at this point it would probably be a good idea to break /var/lib/mysqlJan 12 02:04
schestowitz> into its own filesystem.Jan 12 02:04
schestowitzI am not sure what command would safely extend /var (or move mysql data into a separate new partition without breaking things). I can't import the Gallery2 database right now. :-)Jan 12 02:04
schestowitzI need to at least have a prototype ready in the coming weeks (out-of-date databases in place for testing purposes); when I divert DNS over to copilotco nameservers I'll do a Drupal upgrade (Susan still uses Drupal 6.x), try to restore functionality (many modules will cease to work and may need replacing).Jan 12 02:04
schestowitzI just want to ensure the Drupal side doesn't go horribly broken; the gallery2 side, with a 3.5 GB database, is not actively extended, so it's not of immediate concern.Jan 12 02:04
schestowitzThe value of Tux Machines is its regularly-visiting community; if the site is broken for a while, then this community will go to the competition (Lxer, Linux.com, Linux Today) and may never bother coming back (same problem Google has had).Jan 12 02:04
schestowitzSince we took over Tux Machines we grew its hits count every month, staying at around 100,000 hits per day, so I hope we can keep up the growth and become the leading Linux news syndicator. :-) Half a decade ago the site had over 300,000 hits per day.Jan 12 02:04
schestowitzhttps://en.wikipedia.org/wiki/National_Westminster_BankJan 12 02:14
TechBytesBoten.wikipedia.org | National Westminster Bank - Wikipedia, the free encyclopedia  [ http://ur1.ca/ge5u5 ]Jan 12 02:14
schestowitz"The bank's expansion strategy hit trouble with the stock market crash of 1987 and involvement in the financial scandal surrounding the collapse of Blue Arrow. The Department of Trade and Industry report on the affair was critical of the bank's management and resulted in the resignation of several members of the board, including then chairman Lord Boardman.[13] Later, the bank would divest its overseas subsidiaries. The North AmericanJan 12 02:15
schestowitzoperations were sold to Fleet Bank and Hong Kong Bank of Canada. Thereafter the bank concentrated on its core domestic business as the restyled NatWest Group, reflecting its modern positioning as a portfolio of businesses.[14] In 1993, the NatWest Tower was devastated by a Provisional IRA bomb and the bank vacated the building, subsequently selling it.[15] Then, in 1997, NatWest Markets, the corporate and investment banking arm formedJan 12 02:15
schestowitzin 1992, revealed a £50m loss had been discovered, escalating to £90.5m after further investigations. Investor and shareholder confidence was so badly shaken that the Bank of England had to instruct the board of directors to resist calls for the resignation of its most senior executives in an effort to draw a line under the affair.[16] The bank's internal controls and risk management were severely criticised in 2000 and its aggressiveJan 12 02:15
schestowitzpush into investment banking questioned, after a lengthy investigation by the Securities and Futures Authority.[17] The bank's move into complicated derivative products that it did not fully understand seemed to indicate poor management. By the end of 1997 parts of NatWest Markets had been sold, others becoming Greenwich NatWest in 1998.[18]"Jan 12 02:15
*pidgin_log has quit (Quit: Leaving.)Jan 12 05:32
*pidgin_log (~roy@host86-151-170-36.range86-151.btcentralplus.com) has joined #techbytesJan 12 05:33
*libertybox_ has quit (*.net *.split)Jan 12 11:08
*XFaCE has quit (*.net *.split)Jan 12 11:08
*XFaCE (XFaCE@unaffiliated/xface) has joined #techbytesJan 12 11:47
*libertybox_ (~liberty@host86-151-170-36.range86-151.btcentralplus.com) has joined #techbytesJan 12 11:51
*pidgin_log has quit (Quit: Leaving.)Jan 12 12:25
*schestowitz has quit (Quit: Konversation term)Jan 12 14:08
*schestowitz_log_ has quit (Quit: Ex-Chat)Jan 12 14:12
*schestowitz (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 12 14:12
*pidgin_log (~roy@host86-151-170-36.range86-151.btcentralplus.com) has joined #techbytesJan 12 14:12
*schestowitz_log_ (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 12 14:13
schestowitzhttps://joindiaspora.com/posts/3510523Jan 12 17:46
TechBytesBot@schestowitz@joindiaspora.com: 2013: British police are third highest users of #Facebook data globallyJan 12 17:46
TechBytesBot-> www.bigbrotherwatch.org.uk | British police are third highest users of Facebook data globally | Big Brother Watch  [ http://ur1.ca/gefdr ]Jan 12 17:46
schestowitz"but Facebook is the voice of Bill Gates, so the transparency report is worth less than it would be if they printed it on toilet paper.|Jan 12 17:46
*schestowitz has quit (Read error: No route to host)Jan 12 20:48
*schestowitz_log_ has quit (Read error: Connection reset by peer)Jan 12 20:48
*pidgin_log has quit (Read error: Connection reset by peer)Jan 12 20:48
*schestowitz (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 12 20:52
*pidgin_log (~roy@host86-151-170-36.range86-151.btcentralplus.com) has joined #techbytesJan 12 20:53
*schestowitz_log_ (~schestowi@host86-151-170-36.range86-151.btcentralplus.com) has joined #techbytesJan 12 20:53
*schestowitz_log_ has quit (Changing host)Jan 12 20:53
*schestowitz_log_ (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 12 20:53
*Disconnected (Connection timed out).Jan 14 07:24
**** ENDING LOGGING AT Tue Jan 14 07:24:38 2014
**** BEGIN LOGGING AT Tue Jan 14 07:25:02 2014
*Now talking on #techbytesJan 14 07:25
*Topic for #techbytes is: Welcome to the official channel of the TechBytes AudiocastJan 14 07:25
*Topic for #techbytes set by ThistleWeb!~gordon@unaffiliated/thistleweb at Wed Jan 5 20:55:35 2011Jan 14 07:25
*[freenode-info] channel trolls and no channel staff around to help? please check with freenode support: http://freenode.net/faq.shtml#gettinghelpJan 14 07:25
*schestowitz_log_ (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 14 07:26
*pidgin_log (~roy@host86-129-135-21.range86-129.btcentralplus.com) has joined #techbytesJan 14 07:27
*MinceR_ (~mincer@unaffiliated/mincer) has joined #techbytesJan 14 08:52
*MinceR has quit (Ping timeout: 260 seconds)Jan 14 08:55
*MinceR_ is now known as MinceRJan 14 09:00
*Guest2767 (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 14 14:21
*Guest2767 is now known as schestowitzJan 15 14:29
*schestowitz is now known as roy__Jan 15 14:29
*roy__ is now known as Guest45705Jan 15 14:30
*Guest45705 has quit (Remote host closed the connection)Jan 15 14:32
*schestowitz (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 15 14:35
schestowitz__https://joindiaspora.com/posts/3519041Jan 15 18:54
TechBytesBot@schestowitz@joindiaspora.com: The Slaughter of a Wedding Party in Yemen: Anatomy of a Bad Drone Strike  http://www.huffingtonpost.com/brian-glyn-williams/the-slaughter-of-a-weddin_b_4595274.html this harms everyone's securityJan 15 18:54
TechBytesBot-> www.huffingtonpost.com | The Slaughter of a Wedding Party in Yemen: Anatomy of a Bad Drone Strike | Brian Glyn Williams  [ http://ur1.ca/gfel7 ]Jan 15 18:54
schestowitz__":Obviously they were all enemy combatants!"Jan 15 18:54
schestowitz__They resisted the curfew of drones :-)Jan 15 18:55
schestowitz__https://joindiaspora.com/posts/3519513Jan 15 19:23
TechBytesBot@schestowitz@joindiaspora.com: "Google has launched a simple way to filter Google images by reuse rights." http://lessig.tumblr.com/post/73299449182/glorious-day-google-has-launched-a-simple-way-toJan 15 19:23
TechBytesBot-> lessig.tumblr.com | Lessig Blog, v2  [ http://ur1.ca/gfekn ]Jan 15 19:23
schestowitz__"'bout time."Jan 15 19:23
schestowitz__https://joindiaspora.com/posts/3519760Jan 15 19:34
TechBytesBot@schestowitz@joindiaspora.com reshared: ### Global Campaign for the 4 Hour WorkdayJan 15 19:34
TechBytesBot  Photo by sylviaj@joindiaspora.com: https://joindiaspora.s3.amazonaws.com/uploads/images/thumb_medium_907354e440edd92b41c5.jpgJan 15 19:34
TechBytesBot-> www.4hourworkday.org | Global Campaign for the 4 Hour Work-dayJan 15 19:34
schestowitz__"This won't suit civilizations where greedy people dominate."Jan 15 19:34
schestowitz__https://joindiaspora.com/posts/3521726Jan 15 19:34
TechBytesBot@schestowitz@joindiaspora.com: Jacob Appelbaum's talk made it sound as though #Nightstand was a rarely used tool, not attached to ~100,000 nodes/points.Jan 15 19:34
schestowitz__"100,000 is small scale for what we've learned of NSA spying."Jan 15 19:34
schestowitz__This requires a physical planting phase... unlike s/w and cracking.Jan 15 19:35
*pidgin_log has quit (Quit: Leaving.)Jan 16 09:02
*pidgin_log (~roy@host86-129-135-21.range86-129.btcentralplus.com) has joined #techbytesJan 16 17:46
*schestowitz_log has quit (Ping timeout: 252 seconds)Jan 16 17:46
schestowitz__>> SJVN advertises Microsoft. How weird.Jan 16 19:04
schestowitz__>> <http://www.zdnet.com/convirture-announces-easy-to-use-hyper-v-management-platform-7000025209/>Jan 16 19:04
TechBytesBotwww.zdnet.com | Convirture announces easy-to-use Hyper-V management platform | ZDNet  [ http://ur1.ca/gfig4 ]Jan 16 19:04
schestowitz__>> The whole thing smells like a product placement.Jan 16 19:04
schestowitz__>Jan 16 19:04
schestowitz__> Strange.  That's not like SJVN.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> I also saw a spam or troll the other day asking about using apt-get inJan 16 19:05
schestowitz__> openbsd, on hyper-v.  It was from an MSN.com address.  The lubuntuJan 16 19:05
schestowitz__> users' list also had an MSN troll come along recently, promotingJan 16 19:05
schestowitz__> Facebook and apparently succeeding in moving some discussion off theJan 16 19:05
schestowitz__> list and onto Facebook.  The thread got caught in Gmail's spam filter soJan 16 19:05
schestowitz__> I did not participate beyond an initial too polite rebuttal.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> Along those lines, Theo de Raadt mentioned M$ several times in a talkJan 16 19:05
schestowitz__> entitled "Exploit Mitigation Techniques: an Update After 10 Years" atJan 16 19:05
schestowitz__> ruBSD.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> http://undeadly.org/cgi?action=article&sid=20140115054839&mode=flat&count=0Jan 16 19:05
TechBytesBotundeadly.org | ruBSD: interviews with Theo and Henning  [ http://ur1.ca/gfqoe ]Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> He even dodged a question about M$ circumventing the very mitigationJan 16 19:05
schestowitz__> techniques of his that he was bragging they implemented.  Also the talkJan 16 19:05
schestowitz__> was to be about "The bane of backwards compatibility", which would haveJan 16 19:05
schestowitz__> hurt M$ even if it was not mentioned.  However, he changed the topic ofJan 16 19:05
schestowitz__> the talk to be about exploit mitigation instead.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> I hope that nothing nefarious has been  going on and that openbsd hasJan 16 19:05
schestowitz__> not jumped the shark.  It has been a darn useful project, contributingJan 16 19:05
schestowitz__> indirectly to other distros.  OpenSSH is used just about everywhere, PFJan 16 19:05
schestowitz__> is used in a few places (even at Apple) and many improvements toJan 16 19:05
schestowitz__> programming methods are widely used.  Now, post-leaks, even somethingJan 16 19:05
schestowitz__> mundane like support for non x86 architectures is exceptionally important.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> The project is now on the rocks:Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> http://bsd.slashdot.org/story/14/01/15/1719244/openbsd-looking-at-funding-shortfall-in-2014Jan 16 19:05
schestowitz__>Jan 16 19:05
TechBytesBotbsd.slashdot.org | OpenBSD Looking At Funding Shortfall In 2014 - Slashdot  [ http://ur1.ca/gfqog ]Jan 16 19:05
schestowitz__> If each of the big companies that use OpenSSH would pony up someJan 16 19:05
schestowitz__> marketing money to the tune of 4 digits, then operations would beJan 16 19:05
schestowitz__> secure.  As far as marketing goes, that's not even any noticeable sumJan 16 19:05
schestowitz__> and not only does it generate practical results, it would produce a lotJan 16 19:05
schestowitz__> of good will.Jan 16 19:05
schestowitz__>Jan 16 19:05
schestowitz__> https://developer.apple.com/library/mac/documentation/darwin/reference/manpages/man5/pf.conf.5.htmlJan 16 19:05
TechBytesBotdeveloper.apple.com | pf.conf(5) Mac OS X Manual Page  [ http://ur1.ca/gfqoh ]Jan 16 19:05
schestowitz__> https://developer.apple.com/library/mac/documentation/darwin/reference/manpages/man1/ssh.1.htmlJan 16 19:05
TechBytesBotdeveloper.apple.com | ssh(1) Mac OS X Manual Page  [ http://ur1.ca/gfqoi ]Jan 16 19:06
schestowitz__> https://developer.apple.com/library/mac/documentation/darwin/reference/manpages/man5/sshd_config.5.htmlJan 16 19:06
TechBytesBotdeveloper.apple.com | sshd_config(5) Mac OS X Manual Page  [ http://ur1.ca/gfqoj ]Jan 16 19:06
schestowitz__>Jan 16 19:06
schestowitz__>Jan 16 19:06
schestowitz__https://joindiaspora.com/posts/3523066Jan 16 20:06
schestowitz__"Jan 16 20:06
TechBytesBot@schestowitz@joindiaspora.com: #alexnader lied to Congress and others (inc. oversight) just like #clapper - numerous times in fact. When will they be put in prison? #nsaJan 16 20:06
schestowitz__How is that Clinton got impeachment for lying about having an affair, and those people can lie freely about spying everyone?Jan 16 20:06
schestowitz__Great democracy they have.Jan 16 20:06
schestowitz__"Jan 16 20:06
schestowitz__https://joindiaspora.com/posts/3522766Jan 16 20:08
TechBytesBot@schestowitz@joindiaspora.com: "government had deal with Mexican drug cartel Sinaloa that allowed the group to smuggle billion of dollars of drugs" http://rt.com/usa/sinaloa-drug-cartel-deal-dea-551/Jan 16 20:08
TechBytesBot-> rt.com | ​US govt struck deal with Mexican drug cartel in exchange for info - report — RT USA  [ http://ur1.ca/gfr1g ]Jan 16 20:08
schestowitz__"The US government can make deals and offer amnesty to narcs, but not to people like Snowden. Good to know."Jan 16 20:08
schestowitz__https://twitter.com/Americana777/status/423876525872521216Jan 16 20:14
TechBytesBot@Americana777: @schestowitz 2 way streetJan 16 20:14
schestowitz__ouch... ixquick still uses MSFT for imagesJan 16 20:26
schestowitz__and blinkx for videosJan 16 20:26
schestowitz__http://www.blinkx.com/corporate/about/privacy-policyJan 16 20:26
TechBytesBotwww.blinkx.com | Privacy Policy - blinkx  [ http://ur1.ca/gfr4h ]Jan 16 20:26
schestowitz__https://joindiaspora.com/posts/3522831Jan 16 20:27
TechBytesBot@schestowitz@joindiaspora.com: #Monsanto is one of the best examples I can think of when you wish to show that crime pays off. Reward for genocide, mortality, bribes, etc.Jan 16 20:27
schestowitz__"Corporations are in the business of making money, not making people happy."Jan 16 20:27
schestowitz__https://joindiaspora.com/posts/3523116Jan 16 20:28
TechBytesBot@schestowitz@joindiaspora.com: Your choice: #Cinnamon or #MATE http://www.linuxbsdos.com/2014/01/10/your-choice-cinnamon-or-mate/ #gnome #gnu #linuxJan 16 20:28
TechBytesBot-> www.linuxbsdos.com | Your choice: Cinnamon or MATE | LinuxBSDos.com  [ http://ur1.ca/gfr4y ]Jan 16 20:28
schestowitz__"How did you know %)? I am a #MATE user, yes."Jan 16 20:28
schestowitz__https://joindiaspora.com/posts/3520345Jan 16 20:29
TechBytesBot@schestowitz@joindiaspora.com: Epiphany Web Browser Now Uses HTTPS for Google Searches by Default http://news.softpedia.com/news/Epiphany-Web-Browser-Now-Uses-HTTPS-for-Google-Searches-by-Default-416947.shtml why use Google at all?Jan 16 20:29
TechBytesBot-> news.softpedia.com | Epiphany Web Browser Now Uses HTTPS for Google Searches by Default  [ http://ur1.ca/gff0w ]Jan 16 20:29
schestowitz__" http://d.bluszcz.net/ads.png - it shows with second search."Jan 16 20:30
schestowitz__"Google Ads It appears with second search"Jan 16 23:36
schestowitz__https://joindiaspora.com/posts/3520345Jan 16 23:36
schestowitz__"google is everywhere"Jan 16 23:37
schestowitz__https://joindiaspora.com/posts/3523384Jan 16 23:43
TechBytesBot@schestowitz@joindiaspora.com reshared:Jan 16 23:43
TechBytesBot  Photo by dubbelmubbel@despora.de: https://despora.de/uploads/images/thumb_medium_4d7617388987a4924729.jpegJan 16 23:43
TechBytesBot  Photo by dubbelmubbel@despora.de: https://despora.de/uploads/images/thumb_medium_4d7617388987a4924729.jpegJan 16 23:43
schestowitz__Man, if that ain't the truth."77"Jan 16 23:43
schestowitz__"Hey! I enjoy my half a pillow and edge of the blankets. ;)"Jan 16 23:43
schestowitz__"And then, when you co-sleep with your baby and her mother, it diminishes again by a half.'Jan 16 23:43
schestowitz__"Sure need a bigger bed for that though."Jan 16 23:43
schestowitz__"It does not matter how big your bed is, your side will be the size of a coffin."Jan 16 23:43
schestowitz__"Guy - Wait until it's co-sleeping with two kids! We seriously had two queen size mattresses next to each other."Jan 16 23:44
schestowitz__https://joindiaspora.com/posts/3525253Jan 16 23:45
TechBytesBot@schestowitz@joindiaspora.com: The #fanatic patent aggressor, Apple, is trying to cuddle with #kde http://lists.kde.org/?l=kfm-devel&m=104197092318639&w=2 send #apple to "Trash"Jan 16 23:45
schestowitz__"Again?"Jan 16 23:45
TechBytesBot-> lists.kde.org | '(fwd) Greetings from the Safari team at Apple Computer' - MARC  [ http://ur1.ca/gflwi ]Jan 16 23:45
schestowitz__"Just smile sweetly and graciously ask for the stuff that would help our projects. Give nothing in return but the publicly available, free software licensed code we share with everyone."Jan 16 23:45
schestowitz__"This is from 2003 though!"Jan 16 23:45
schestowitz__"That email was from 2003. Am I missing something?"Jan 16 23:45
schestowitz__"A wormhole in the space-time continuum."Jan 16 23:45
schestowitz__"If they are asking for more again, it's wroth remembering how they sweet talked then. In fact, it's worth remembering in any case. Don't buy or promote Apple."Jan 16 23:45
schestowitz__https://joindiaspora.com/posts/3525773Jan 16 23:48
TechBytesBot@schestowitz@joindiaspora.com: #Security Expert Bruce Schneier Says to Foil NSA Spies, Encrypt EverythingJan 16 23:48
TechBytesBot-> www.businessweek.com | Security Expert Bruce Schneier Says to Foil NSA Spies, Encrypt Everything - Businessweek  [ http://ur1.ca/gfs54 ]Jan 16 23:48
schestowitz__"I know he's an expert, but really all that does is ensure whatever you're encrypting they will copy for certain and keep forever. I'm not saying don't encrypt things, but many of the documents that have been released thus far emphasize the fact that all encrypted traffic is copied and stored indefinitely."Jan 16 23:48
*schestowitz__ has quit (Remote host closed the connection)Jan 17 21:49
*schestowitz__ (~schestowi@host86-129-135-21.range86-129.btcentralplus.com) has joined #techbytesJan 17 21:49
*schestowitz__ has quit (Changing host)Jan 17 21:49
*schestowitz__ (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 17 21:49
schestowitz__https://joindiaspora.com/posts/3520345Jan 17 22:25
schestowitz__"wow, I tried that but didn't see any google... maybe my adblock is blocking it?"Jan 17 22:25
schestowitz__https://joindiaspora.com/posts/3527378Jan 17 22:25
TechBytesBot@schestowitz@joindiaspora.com: When a friend of yours -- or even a business -- wishes to borrow your money (to lend out to others at 10% APR) would you PAY him/her/it?Jan 17 22:25
schestowitz__"Atleast not with a friend, since it could spoil the friendship if things go awry"Jan 17 22:25
schestowitz__https://joindiaspora.com/posts/3528322Jan 17 22:31
TechBytesBot@schestowitz@joindiaspora.com: Oppressive action requires strong reaction http://news.techeye.net/business/turn-off-the-nsas-power-campaign-underwayJan 17 22:31
schestowitz__"Agreed."Jan 17 22:31
TechBytesBot-> news.techeye.net | Turn off the NSA’s power campaign underway - Cray could be banned from selling computer parts  | TechEye  [ http://ur1.ca/gfzb6 ]Jan 17 22:31
schestowitz__https://joindiaspora.com/posts/3528393Jan 17 22:32
TechBytesBot@schestowitz@joindiaspora.com: The #NSA Lied About Collecting Hundreds of Millions of Texts a Day, and Everything ElseJan 17 22:32
TechBytesBot-> motherboard.vice.com | The NSA Lied About Collecting Hundreds of Millions of Texts a Day, and Everything Else | Motherboard  [ http://ur1.ca/gfzbc ]Jan 17 22:32
schestowitz__"Oops. An honest mistake, lads... wink wink"Jan 17 22:32
schestowitz__https://joindiaspora.com/posts/3529395Jan 17 22:35
TechBytesBot@schestowitz@joindiaspora.com: When Bradley/Chelsea Manning was described by corporate media as depressed (imposed by conditions or false) it helped 'official' narrativeJan 17 22:35
schestowitz__"Sometimes a cigar is just a cigar. The very fact that Bradley became Chelsea is indicative of someone who probably wasn't happy with who they were and did suffer through periods of depression. Just because it helps the 'official' narrative doesn't make it not true. And just because you are paranoid doesn't mean they aren't out to get you. :)"Jan 17 22:35
schestowitz__https://joindiaspora.com/posts/3528114Jan 17 22:35
TechBytesBot@schestowitz@joindiaspora.com reshared: ### How do you recognize the NSA #headquarter?Jan 17 22:35
schestowitz__"Is that some kind of error message on the screen?"Jan 17 22:35
schestowitz__https://joindiaspora.com/posts/3528057Jan 17 22:35
TechBytesBot@schestowitz@joindiaspora.com: Raspberry Pi: 11 reasons why it's the perfect small server http://www.zdnet.com/raspberry-pi-11-reasons-why-its-the-perfect-small-server-7000025206/ #raspberrypi #linuxJan 17 22:35
schestowitz__"I would like to have one just for fun."Jan 17 22:35
TechBytesBot-> www.zdnet.com | Raspberry Pi: 11 reasons why it's the perfect small server | ZDNet  [ http://ur1.ca/gfzcj ]Jan 17 22:35
schestowitz__http://www.ombudsman.org.uk/accessibilityJan 17 22:57
TechBytesBotwww.ombudsman.org.uk | Accessibility  [ http://ur1.ca/gfzk0 ]Jan 17 22:57
schestowitz__"To view and print Portable Document Format (PDF) files, you need the free Adobe Reader software. If you don't have Adobe Reader already, you can download it from www.adobe.com external link opens in new window. Follow the link titled 'Get Adobe Reader'."Jan 17 22:57
schestowitz__"You can view and print Microsoft Word files from Microsoft Word itself or several other word processing packages. Microsoft offer the free Microsoft Word Viewer as a download for Windows users that don't have a suitable word processor. The viewer is available from the Office section of www.microsoft.com.external link opens in new window"Jan 17 22:58
schestowitz__> On Sat, 2014-01-18 at 01:14 +0000, Roy Schestowitz wrote:Jan 18 01:37
schestowitz__>>> ...is here:Jan 18 01:37
schestowitz__>>>Jan 18 01:37
schestowitz__>>> http://ftp.redhat.com/redhat/linux/enterprise/6Server/en/os/SRPMS/Jan 18 01:37
schestowitz__>>>Jan 18 01:37
schestowitz__>>> do feel free to peruse it at your leisure.Jan 18 01:37
TechBytesBotftp.redhat.com | Index of /redhat/linux/enterprise/6Server/en/os/SRPMS  [ http://ur1.ca/gg0as ]Jan 18 01:37
schestowitz__>>>Jan 18 01:37
schestowitz__>>> No, you don't know the entire build chain - but then you don't knowJan 18 01:37
schestowitz__>>> the entire CentOS build chain either.Jan 18 01:37
schestowitz__>>Jan 18 01:38
schestowitz__>> Right, but it's about trust then. Red Hat works with DOD and peopleJan 18 01:38
schestowitz__>> near those circles warned me a bit. Also, as we have CESG as a clientJan 18 01:38
schestowitz__>> I know their concerns about build chains.Jan 18 01:38
schestowitz__>Jan 18 01:38
schestowitz__> You know CESG has certified RHEL 6 as EAL 4+, right?Jan 18 01:38
schestowitz__I remember something to that effect.Jan 18 01:38
schestowitz__ Jan 18 01:38
schestowitz__>>  I trust the NSA as much as IJan 18 01:38
schestowitz__>> trust China and Red Hat as much as I trust Huawei (also a client ofJan 18 01:38
schestowitz__>> ours).Jan 18 01:38
schestowitz__>Jan 18 01:38
schestowitz__> Welp, I'm pretty sure absolutely any OS you can run has been written byJan 18 01:38
schestowitz__> people using hardware produced in China and compiled on hardwareJan 18 01:38
schestowitz__> produced in China. So, y'know, you're kinda boned already.Jan 18 01:38
schestowitz__Yes, but that doesn't exempt the OS from having to demostrate trust. If we start with a defeatist's position, then we lose no matter what...Jan 18 01:38
schestowitz__>>  Some years ago I read about China making RHEL derivatives withJan 18 01:38
schestowitz__>> back doors (binary distribution); after all the NSA leaks can weJan 18 01:38
schestowitz__>> assume that the West does not engage in similar behaviour? It's aboutJan 18 01:38
schestowitz__>> who builds it, and who /with/. NSA hands over patched to RHT employeesJan 18 01:38
schestowitz__>> now (they say so, it's not just SELinux)Jan 18 01:38
schestowitz__>Jan 18 01:38
schestowitz__> Well, of course they do. They're an RH customer, and most of our majorJan 18 01:38
schestowitz__> customers contribute patches. But it's not like we just apply themJan 18 01:38
schestowitz__> blindly.Jan 18 01:38
schestowitz__>Jan 18 01:38
schestowitz__> If the NSA was going to try and backdoor RHEL (or any other piece ofJan 18 01:38
schestowitz__> software), do you really think they'd do it by sending a patch with aJan 18 01:38
schestowitz__> backdoor in it via their usual submission channels, which clearlyJan 18 01:38
schestowitz__> identify that code as coming from the NSA? Don't you think they'd tryJan 18 01:38
schestowitz__> and get it in in a way which did not involve making it screaminglyJan 18 01:38
schestowitz__> obvious that code had come from the NSA? (e.g., have an NSA mole workingJan 18 01:38
schestowitz__> for some other company submit it...)Jan 18 01:38
schestowitz__That's one risk factor that I named. But I suspect a lot of backdoors are not in upstream code; the NSA usually steps in (publicly) when the build process starts (at Microsoft, Apple, SUSE, and Red Hat).Jan 18 01:38
schestowitz__>>  and the build involves theJan 18 01:38
schestowitz__>> NSA, AFAIK.Jan 18 01:38
schestowitz__>Jan 18 01:38
schestowitz__> I don't know what this means, but afaik, all RH stuff is built onJan 18 01:38
schestowitz__> systems owned by RH, on RH facilities. But I'm hardly an expert.Jan 18 01:38
schestowitz__>Jan 18 01:38
schestowitz__>>> You could bootstrap the entire thing locally, but do you trustJan 18 01:39
schestowitz__>>> your compiler?Jan 18 01:39
schestowitz__>>Jan 18 01:39
schestowitz__>> Yes, the GNU compiler is quite trustworthy (FSF et al.), and there areJan 18 01:39
schestowitz__>> many projects that include it and watch the build process.Jan 18 01:39
schestowitz__>Jan 18 01:39
schestowitz__> Well, GCC isn't anywhere near the only compiler involved in building aJan 18 01:39
schestowitz__> modern distro from the ground up...Jan 18 01:39
schestowitz__lex and yacc and other tools that make up gcc may often suffice.Jan 18 01:39
schestowitz__>>> Well, okay, so write your own compiler. But do you trust yourJan 18 01:39
schestowitz__>>> system's firmware?Jan 18 01:39
schestowitz__>>Jan 18 01:39
schestowitz__>> No, firmware is a known problem and hardware in general is a threat,Jan 18 01:39
schestowitz__>> especially not if it's something with UEFI for instance... we recentlyJan 18 01:39
schestowitz__>> heard about BIOS as a bricking mechanism. But pointing to levels belowJan 18 01:39
schestowitz__>> the OS is basically diverting attention to other perceived threats.Jan 18 01:39
schestowitz__>Jan 18 01:39
schestowitz__> It's not really, it's just pointing out that if you really want to beJan 18 01:39
schestowitz__> absolutely sure you can trust your software, it's a *hell* of a job. TheJan 18 01:39
schestowitz__> NSA does this for its own purposes, of course: for very sensitive stuffJan 18 01:39
schestowitz__> they use a customized Linux build which they have assessed from theJan 18 01:39
schestowitz__> ground up, AIUI. But it's pretty difficult for anyone else to manageJan 18 01:39
schestowitz__> that level of certainty.Jan 18 01:39
schestowitz__>Jan 18 01:39
schestowitz__> When the Snowden stuff came out, it kicked off a thread on an internalJan 18 01:39
schestowitz__> RH list about whether it would be possible to somehow assert/test theJan 18 01:39
schestowitz__> integrity of the RHEL binaries. The general consensus was 'yes, but itJan 18 01:39
schestowitz__> would take a hell of a lot of resources'.Jan 18 01:39
schestowitz__Understood, we do that too. But talking about infeasibility does not prove safety.Jan 18 01:39
schestowitz__>>> The rabbit hole goes down a long way, you know...Jan 18 01:39
schestowitz__>>Jan 18 01:39
schestowitz__>> Yes, which is what RMS was right on many things and we need toJan 18 01:39
schestowitz__>> encourage transparency in the whole process, and increase indpendentJan 18 01:39
schestowitz__>> peer review.Jan 18 01:39
schestowitz__>Jan 18 01:39
schestowitz__> Anyway, it would be nice if you'd correct your article, since it seemsJan 18 01:39
schestowitz__> to be asserting that RHEL source is not available to anyone. ItJan 18 01:39
schestowitz__> certainly is. We have a legal obligation to provide all the GPL sourcesJan 18 01:39
schestowitz__> to anyone who buys RHEL, of course, and so we do. We don't have a legalJan 18 01:39
schestowitz__> obligation to provide the GPL sources to anyone else, or the moreJan 18 01:40
schestowitz__> liberally-licensed sources to anyone, but we do so anyway, at the URL IJan 18 01:40
schestowitz__> gave you. How do you think CentOS gets built otherwise?Jan 18 01:40
schestowitz__"In retaliation, Red Hat started shipping Linux kernel source code in a big tarball with the patches already applied, making it more difficult to build Linux distributions from the RHEL source" -CentOSJan 18 01:40
schestowitz__>> "In retaliation, Red Hat started shipping Linux kernel source code inJan 18 01:59
schestowitz__>> a big tarball with the patches already applied, making it moreJan 18 01:59
schestowitz__>> difficult to build Linux distributions from the RHEL source" -CentOSJan 18 01:59
schestowitz__>Jan 18 01:59
schestowitz__> Sigh, I'm really sick of that whole thing. My personal opinion is thatJan 18 01:59
schestowitz__> we shouldn't have done it, but it really isn't a huge stinking deal. TheJan 18 01:59
schestowitz__> kernel .src.rpm contains all the source code. It's not all split outJan 18 01:59
schestowitz__> nicely into patches, but it contains all the source code. The code thatJan 18 01:59
schestowitz__> builds the RHEL kernel is all in it.Jan 18 01:59
schestowitz__SUSE does even worse things. I wrote about it like 6 years ago. But Oracle is another dodgy one. Given what seems like back doors in Oracle DBs can we ever trust its RHEL clone? And if not, in what respects is RHEL better? I think trust has been eroded and obfuscation through patches contributes to distrust.Jan 18 01:59
schestowitz__>> That's one risk factor that I named. But I suspect a lot of backdoorsJan 18 02:00
schestowitz__>> are not in upstream code; the NSA usually steps in (publicly) when theJan 18 02:00
schestowitz__>> build process starts (at Microsoft, Apple, SUSE, and Red Hat).Jan 18 02:01
schestowitz__>Jan 18 02:01
schestowitz__> You keep asserting this, without providing a shred of substantiation.Jan 18 02:01
schestowitz__> It's a pretty bold claim to be making, and one that you *really* oughtJan 18 02:01
schestowitz__> to have some support for before printing, IMHO.Jan 18 02:01
schestowitz__There were corporate media reports about it around 2008 (sites like IDG's sites, IIRC). I can search for it if you're very interested.Jan 18 02:01
*oiaohm (~oiaohm@unaffiliated/oiaohm) has joined #techbytesJan 18 10:31
*oiaohm has quit (Quit: Konversation terminated!)Jan 18 12:11
schestowitz__"Jan 18 18:20
schestowitz__>>> As for a smoking gun, it is unlikely to be published on purpose by theJan 18 18:20
schestowitz__>>> parties involved.  We'll have to wait for existing or future leaks toJan 18 18:20
schestowitz__>>> enlighten us.  NSLs and other methods would prevent that otherwise.  RedJan 18 18:20
schestowitz__>>> Hat is a very large company and unlikely to have been overlooked byJan 18 18:20
schestowitz__>>> PRISM or related programmes.  But you already wrote about that in RedJan 18 18:20
schestowitz__>>> Hat in November.  Those that have been contacted are mostly not free toJan 18 18:20
schestowitz__>>> speak up.Jan 18 18:20
schestowitz__>>Jan 18 18:20
schestowitz__>> or maybe they are tempted to speak out but have a mortgage to pay.Jan 18 18:20
schestowitz__>Jan 18 18:20
schestowitz__> PJ labelled that the Yuppie Nuremburg defense.  It's common.Jan 18 18:20
schestowitz__> I hope she is doing well.  Groklaw is sure missed.Jan 18 18:20
schestowitz__Thank You for Smoking Yuppie Nuremburg defense, PJ attributed the film.Jan 18 18:20
schestowitz__I have not heard from PJ in ages. She really is serious about bailing out this time. I did hear from someone who had spoken to her some months ago.Jan 18 18:20
schestowitz__The "nothing wrong, nothing to hide" defence is bogus, BUT... in PJ's case, I have to wonder how many times IBM goons passed her "scoops" and info (not just IBM), as I happen to have confronted those goons... one time over the phone for an hour... and the IBM goon tried to use his daughter as some kind of Yuppie Nuremburg defense.Jan 18 18:20
schestowitz__Maybe I have become too cynical and thus a little too hostile towards many whom I view as selling us out (as a collective society) for a quick buck, much like today's cops.Jan 18 18:20
schestowitz__I believe you already know, based on what I told you in 2010, that Tim from techbytes was a cop, and I suspect he was spying on us when we were leaking documents and stuff. There's lots more I can tell you given the time (we have encryption), e.g.:Jan 18 18:20
schestowitz__-Tim was infiltrating racist groups, adapting with fake facial hair, tattoos (IIRC), fake ID, etc.Jan 18 18:20
schestowitz__-Tim's dad is a high-level police officer. He is also a freemason. I met him and his wife. Nice people, offered to visit here in Manchester, and the dad looks like Prescott. Since I read the bombshell about freemason infiltrating US police and spying complex (see The Independent report from last week) I have had worrisome thoughts about it.Jan 18 18:20
schestowitz__-Tim claims to have had a hard time in the police. He says he's quitting and is moving to the US in April... with the family. Very odd. But I hope he never lied to me. I never really caught him lying. And given his pro-copyright reform views and other views (anti-queen) I can understand why the Cult of UK police had to push him out... I hope he wasn't using that just to bait people. Either way, lots more that I can say about it.Jan 18 18:20
schestowitz__Other mind dumps:Jan 18 18:20
schestowitz__- Still thinking PJ used privacy as **partly** an excuse (which she can actually make herself believe in).Jan 18 18:20
schestowitz__- A lot of funny things going on in UK, and some messages I receive remind me I need to be careful and keep my wife informed at all times. I can elaborate if you wish...Jan 18 18:20
schestowitz__- Been speaking to the 'British Snowden', Machon. RMS spoke to her also. I think I might be wrong about Tim, but I need to stay careful.Jan 18 18:20
schestowitz__- A relative from Bradford got looted by some scammer from Africa... fell into massive debt and the British police is not helping. Disgusting. I lost all faith in what's perceived to be "necessary" function of police.Jan 18 18:20
schestowitz__Finally, to end with something a little more cohesive, as my tweets, d* posts etc. serve to show, I am getting more fascinated by and intrested in what wikileaks et al. are doing. they bang on the right door. Today at the gym I spoke to an old friend of mine about it and he correctly pointed out that the CIA would have killed Snowden and others if they could (before risking Streisand Effect)... and we need those people in order toJan 18 18:20
schestowitz__save today's young children, who are given the gift of personal/student debt to keep them paralysed. The money is there to pay back loans, but only a few people hoard all the money and then hide it. That's why we need leaks, and we need FOSS to enable them to come out safely. RMS also became increasingly interested in all that stuff, which has become a serious subject of national interest. I recently started posting in Tumblr (yes,Jan 18 18:20
schestowitz__Yahoo) some Linux links (see reallinux.tumblr.com). it's an account given to me by a lad in Switzerland who likes Linux.... I still cover FOSS and Linux as much as needed, but i rely mostly on IRC for links regarding Microsoft (departing execs, scandals, etc.)Jan 18 18:21
schestowitz__My wife helps a lot around here, doing all the house work and beyond, bringing in a wage, posting in Tux machines, etc. so I can probably keep up posting at a decent volume (output as measured in terms of # of news stories I can keep abreast of). I don't have any megalomania over it; it's just very fascinating and fun to see the degree to what individuals can drive change. I think debt of all sorts is an evil that's now a principalJan 18 18:21
schestowitz__vehicle by which to paralyse resistance and I see how bankers use ridicule and disinfo trying to see us too some loans...Jan 18 18:21
schestowitz__I promise something cohesive, but I ended up just dumping a whole lot of personal material -- stuff I'd never really post in public.Jan 18 18:21
schestowitz__"Jan 18 18:21
schestowitz__> We share a lot of the same concerns.  If you are ever in Rovaniemi forJan 18 19:07
schestowitz__> skiing or snowboarding we can go into more detail.Jan 18 19:07
schestowitz__I will seriously consider that.Jan 18 19:07
schestowitz__> I'm not able to write much these days, the writing is just too hard forJan 18 19:07
schestowitz__> the time being.  Maybe it will get easier if I finish writing aJan 18 19:07
schestowitz__> bibliographic management package.  The search engines are just tooJan 18 19:07
schestowitz__> ephemeral.  Search terms that work one week bring up totally differentJan 18 19:07
schestowitz__> material later.   In general, there are fewer and fewer voices onlineJan 18 19:07
schestowitz__> these days so your posts are increasingly important.Jan 18 19:07
schestowitz__>Jan 18 19:07
schestowitz__> I'll send the fresh links as I find them.Jan 18 19:07
schestowitz__Search engines now act as censorship.Jan 18 19:07
schestowitz__Search engines disguise censorship as personalisation.Jan 18 19:07
schestowitz__Search engines sometimes use the idea of improving based on location.Jan 18 19:07
schestowitz__Search engines are very dangerous tools.Jan 18 19:07
schestowitz__Once upon a time when I used the Net (mid nineties) I used portals.Jan 18 19:08
schestowitz__Now we have a bunch of few US companies controlling acccess to info (act as gateway), directly or indirectly (meta-SEs).Jan 18 19:08
schestowitz__This is a bit scary.Jan 18 19:08
schestowitz__We might have censorship in the West, without it being announced.Jan 18 19:08
schestowitz__My favourite SE that I recommended has now expanded from .NL to NYC (offices and DC). Their staff is in damage control mode in my postings. They kept quite quiet about Google deal last year... they now serve Google ads under the pretext of "shutting down" otherwise... and they use Microsoft for images. I don't know what SE I can trust now.Jan 18 19:08
schestowitz__A lot of people access the Web though SEs, which also come under threats by copyright and political processes.Jan 18 19:08
schestowitz__Anyway, the point is that a lot of censorship is covertly introduced now by government-propped-up and controlled (and exploited) companies that can afford to index the Web while profiling sites and users. It's about control and rther than emancipate ourselves using the Web we have it used as an infomant against us.Jan 18 19:08
*vinzv has quit (*.net *.split)Jan 18 21:19
*XFaCE has quit (*.net *.split)Jan 18 21:19
*pidgin_log has quit (*.net *.split)Jan 18 21:19
*ChanServ has quit (*.net *.split)Jan 18 21:20
*MinceR has quit (*.net *.split)Jan 18 21:20
*schestowitz has quit (*.net *.split)Jan 18 21:20
*schestowitz__ has quit (*.net *.split)Jan 18 21:20
*schestowitz_log_ has quit (*.net *.split)Jan 18 21:20
*TechBytesBot has quit (*.net *.split)Jan 18 21:20
*schestowitz__ (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 18 21:21
*pidgin_log (~roy@host86-129-135-21.range86-129.btcentralplus.com) has joined #techbytesJan 18 21:21
*schestowitz (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 18 21:21
*MinceR (~mincer@unaffiliated/mincer) has joined #techbytesJan 18 21:21
*schestowitz_log_ (~schestowi@unaffiliated/schestowitz) has joined #techbytesJan 18 21:21
*XFaCE (XFaCE@unaffiliated/xface) has joined #techbytesJan 18 21:21
*vinzv (~quassel@fedora/vinzv) has joined #techbytesJan 18 21:21
*TechBytesBot (~b0t@216.105.40.123) has joined #techbytesJan 18 21:21
*ChanServ (ChanServ@services.) has joined #techbytesJan 18 21:21
*cameron.freenode.net gives channel operator status to ChanServJan 18 21:21

Generated by irclog2html.py 2.6 by Marius Gedminas - find it at mg.pov.lt!